Commit Graph

505 Commits

Author SHA1 Message Date
Tad
e22d028cbd Switch DNS back to OpenNIC for now 2018-05-08 16:04:41 -04:00
Tad
f5fd480f56 Update CVE patchers 2018-05-07 16:20:58 -04:00
Tad
ee6788df1e Switch from OpenNIC to Cloudflare DNS 2018-05-03 07:38:32 -04:00
Tad
776defd5c3 Tweaks 2018-04-29 00:53:53 -04:00
Tad
8220c2fd11 Prepare potential future inclusion of DNS66 2018-04-28 21:50:06 -04:00
Tad
b30c62629b Revert "Strong AES patch changes"
This reverts commit 60b85e10fe.
2018-04-28 15:35:53 -04:00
Tad
60b85e10fe Strong AES patch changes 2018-04-28 15:25:42 -04:00
Tad
b0ce27b860 Fix building, and temporarily disable some broken defaults 2018-04-28 03:16:35 -04:00
Tad
999c94d2de Update CVE patchers 2018-04-28 00:43:08 -04:00
Tad
ff03ff8fe1 14.1: Verification of changes 2018-04-27 23:49:40 -04:00
Tad
cadba79c51 15.1: Verification of changes 2018-04-27 23:09:52 -04:00
Tad
aadb669450 Change default sounds 2018-04-27 22:26:48 -04:00
Tad
d2c15ac8db Defaults: Cleanup 2018-04-27 22:18:52 -04:00
Tad
3feba464fe Change more defaults 2018-04-27 22:15:04 -04:00
Tad
f433f5389c Fix F-Droid defaults 2018-04-27 01:26:29 -04:00
Tad
791a9a7386 Even more defaults 2018-04-26 01:56:42 -04:00
Tad
06cf4e52ce More defaults 2018-04-25 23:49:50 -04:00
Tad
6f7c21f024 Change many more default settings 2018-04-25 23:38:53 -04:00
Tad
4011255c53 14.1: Fixes 2018-04-25 22:28:42 -04:00
Tad
f122ccb9f1 Many changes
- Disable patches with restrictive licenses by default
- Update LICENSE
- Fixup the fix for F-Droid building
- 15.1: Fix forceencrypt on mako
- 15.1: Fix crashes when accessing factory reset and development settings menus
 on devices without support for factory reset protection or oem unlocking
2018-04-23 15:42:27 -04:00
Tad
02908a652a Terminate all lines 2018-04-23 08:59:18 -04:00
Tad
28600556b4 Many changes
- Add a variable to control inclusion of patches under a restrictive license
- Fix F-Droid building
- Add a buildDeviceDebug function that disables signing
- Misc tweaks/cleanup
- 15.1: Revert trust_interface cherry picks until official
2018-04-23 08:44:50 -04:00
Tad
28de039beb Update CVE patchers 2018-04-22 02:41:18 -04:00
Tad
4b04593376 Fixup de78fb8b9a 2018-04-14 11:30:05 -04:00
Tad
b8937a6400 14.1: Fix herolte, both: replace Gallery2 with CameraRoll 2018-04-14 02:27:01 -04:00
Tad
de78fb8b9a Update CVE patchers 2018-04-13 15:29:21 -04:00
Tad
2289ba2053 15.1: Switch more devices to -user 2018-04-12 23:11:30 -04:00
Tad
1fa75dcb65 15.1: More fixes 2018-04-12 09:26:03 -04:00
Tad
df7979a214 Many changes
- Manifests: Cleanup and remove more repos
- Remove Lineage recovery keys
- 15.1: Switch to 14.1 recovery
- 15.1: Enable recovery updating
- 15.1: d852: fix updater denial
- Misc cleanup
2018-04-12 06:40:10 -04:00
Tad
a914c813b0 15.1: Fixes, 14.1: Cleanup 2018-04-10 19:24:39 -04:00
Tad
7be3f8a556 Many fixes 2018-04-10 00:08:21 -04:00
Tad
f3a92223a5 Fix updater 2018-04-06 21:50:20 -04:00
Tad
fcea2b8d1d Lots of cleanup
- Some overclocks might be missing'
2018-04-06 14:10:43 -04:00
Tad
a661c4cde5 14.1: Drop mako 2018-04-06 13:58:48 -04:00
Tad
fec8fecf5f 14.1: Drop marlin/sailfish 2018-04-06 13:38:55 -04:00
Tad
b2d1b93dcb 14.1: Drop bacon and m8, 15.1: Many more fixes 2018-04-04 21:24:08 -04:00
Tad
f0ab546816 Dramatically deduplicate scripts 2018-04-04 07:52:11 -04:00
Tad
fa2987d3dc 15.1: More fixes and cleanup 2018-04-03 10:56:28 -04:00
Tad
42da60142c 15.1: Many fixes 2018-04-03 09:10:49 -04:00
Tad
c3a3beb907 Update CVE patchers 2018-04-03 06:10:03 -04:00
Tad
e45dd6d45c Remove LOSCoins malware
LineaGenuine is a shitty joke and LOSCoins is proprietary malware

LOSCoins:
- no source available
- source will probably never be available hinted by inc.lineageos package name
- depends on proprietary google play services
- inclues proprietary libraries
- malware
- malware
- malware
2018-04-01 07:07:17 -04:00
Tad
d47c58ba3b Dialer: Simplify disabling lookup 2018-03-31 17:33:49 -04:00
Tad
c3fbff7edd Dialer: Fix disabling lookup 2018-03-31 17:30:50 -04:00
Tad
4f9299f900 Update CVE patchers 2018-03-30 21:47:33 -04:00
Tad
147ab4667e SetupWizard: Switch to our (temp) logo 2018-03-28 16:14:03 -04:00
Tad
8a9cd5c57c SetupWizard: Remove Lineage logo until we can replace it 2018-03-28 01:15:59 -04:00
Tad
e634a22758 14.1: Update default workspaces 2018-03-28 01:07:36 -04:00
Tad
2d8bab800c Many Changes
- Remove more projects via manifests
- Fix FDroidPrivExt inclusion
- 14.1: Remove Jelly
- Remove leftovers from LG G2
2018-03-23 12:37:26 -04:00
Tad
800bd2f985 Move Fennec DOS shim to PrebuiltApps repo 2018-03-23 10:00:33 -04:00
Tad
d9318b61e6 Fix zip name and Fennec DOS shim 2018-03-23 09:37:08 -04:00
Tad
414fa5caa2 Fix zips and buildtype 2018-03-22 09:49:44 -04:00
Tad
e533bc7607 Cleanup 2018-03-22 08:32:01 -04:00
Tad
babc89a079 Update buildtype and .zip prefix 2018-03-22 08:29:40 -04:00
Tad
3ceff683a8 Rebase FDroidPriv patch and cleanup privacy guard changes 2018-03-21 20:50:45 -04:00
Tad
989a494090 Cleanup 2018-03-19 21:28:15 -04:00
Tad
2a1b88cab3 Cleanup 2018-03-18 12:48:08 -04:00
Tad
2155d1ffd2 Add a note about Thor's /misc partition 2018-03-15 23:46:55 -04:00
Tad
f5e2d2dece Many fixes 2018-03-14 14:31:08 -04:00
Tad
e4435f9eac Tweaks and cleanup 2018-03-14 00:41:05 -04:00
Tad
4053ad6082 Initial support for including prebuilt apps from F-Droid
FDroid will come later, microG will probably stay as is.
2018-03-13 23:07:41 -04:00
Tad
ad9f1aa8ce Tweaks 2018-03-12 23:13:50 -04:00
Tad
d111027f4d Many changes
15.1: Update CVE patchers
15.1: Add back automated build signing
14.1: Disable herolte (broken)
14.1: March 2018 Security Bulletin
2018-03-08 22:06:18 -05:00
Tad
9c2272bc03 14.1: Update CVE patchers 2018-03-07 00:07:45 -05:00
Tad
66fd8f57e5 14.1: Drop another device; 15.1: Fix shamu 2018-03-01 10:30:52 -05:00
Tad
eea5b71bd4 14.1: Drop 5 devices supported by 15.1 2018-03-01 09:51:05 -05:00
Tad
601c03df01 Misc fixes 2018-02-28 16:33:29 -05:00
Tad
994a069deb Remove JustArchi's compiler flag optimizations
While some tasks complete slightly faster overall there are too many downsides
- Too large system images
- Weird compiler errors
- Performance regressions on some devices
- General maintenance overhead

Maybe a less aggressive variant can be brought back in the future
2018-02-25 19:56:29 -05:00
Tad
9cdfc59d5e 14.1: Update CVE patchers 2018-02-19 15:01:57 -05:00
Tad
f7abbe151d 15.1: Even more build fixes 2018-02-12 07:28:04 -05:00
Tad
910ee5ad76 15.1: Build fixes 2018-02-12 05:28:24 -05:00
Tad
b02d40974c 15.1: Initial CVE patchers 2018-02-12 04:13:25 -05:00
Tad
3739cfbaa2 Super initial support for LineageOS 15.1 2018-02-11 23:50:18 -05:00
Tad
48d9b9daaa Update CVE patchers and add a helper patch function 2018-02-05 19:21:44 -05:00
Tad
56e5ddba10 Breakout devices broken by -O3 2018-02-01 07:31:25 -05:00
Tad
d3a231e2be Many build fixes
- Deblobber: sh -> bash (potential fix)
- Mark h815 as broken upstream
- Fix h850
- Fix herolte
- Fix Z00T
2018-01-31 13:14:19 -05:00
Tad
0f4e89c4cc Split up buildAll, and mark broken/todo devices there 2018-01-31 07:49:12 -05:00
Tad
d4087bc1e4 Many changes
- Add /misc to thor/apollo
- Remove IR build fix from h815
- Don't dexpreopt i9100, /system is too small
- Add note about -O3 flags breaking devices
- Change SQLite journal mode from PERSIST to TRUNCATE
- Disable flo for now, needs fixes
2018-01-31 07:45:53 -05:00
Tad
f5e79a3d11 Minor tweaks and update CVE patchers 2018-01-30 02:18:38 -05:00
Tad
ed6b73793b Many changes
- Recovery: Squash menus
- dexpreopt boot of all devices
- Update device todo list
2018-01-20 07:36:08 -05:00
Tad
4b5717b6b7 -O3 ALL THE THINGS! Use JustArchi's compiler flags 2018-01-19 05:41:08 -05:00
Tad
1e794178db Misc. updates 2018-01-19 03:14:25 -05:00
Tad
47ae3584a7 Build fixes and update CVE patchers 2018-01-17 17:06:40 -05:00
Tad
e3d6171053 Update CVE patchers 2018-01-16 19:55:07 -05:00
Tad
226f78bd15 Break commonly used commands out into functions 2018-01-15 15:50:29 -05:00
Tad
a84bf140fe Fix thor overclock and clark recovery 2018-01-12 09:26:54 -05:00
Tad
bad18d67fc Improved thor overclocks 2018-01-11 20:39:49 -05:00
Tad
3491639412 Overclock thor 2018-01-11 20:29:37 -05:00
Tad
96104d6a2d Overclock mako 2018-01-11 15:58:04 -05:00
Tad
7ec6b4cf88 Overclocks for msm8992 2018-01-11 15:00:46 -05:00
Tad
77cc7f1341 More overclocks 2018-01-11 14:31:17 -05:00
Tad
6fb82b7907 Attempt to improve AES performance 2018-01-11 14:16:13 -05:00
Tad
8e8c1d5834 Update CVE patchers 2018-01-10 18:29:28 -05:00
Tad
c47dee71d8 Add a function to update the kernel localversion 2018-01-10 17:52:20 -05:00
Tad
f57f77662b Enable AES-256 encryption for most devices 2018-01-10 16:17:20 -05:00
Tad
ffa80a1341 Update CVE patchers 2018-01-10 15:49:48 -05:00
Tad
85895baa66 Update CVE patchers 2018-01-10 15:24:05 -05:00
Tad
97bb50e125 Update CVE patchers 2018-01-10 02:20:35 -05:00
Tad
86234066dc Patch most 3.10 kernels against Spectre 2018-01-04 19:52:32 -05:00
Tad
0600ccd154 Fix animation scale settings being reset to 1x when disabling development options 2018-01-04 17:17:30 -05:00
Tad
a4cde9bb89 Update CVE patchers 2018-01-04 13:34:44 -05:00
Tad
1402e9b041 Update CVE patchers 2018-01-04 13:17:29 -05:00
Tad
e5cbc542ea Misc changes 2018-01-03 21:55:04 -05:00
Tad
9e24a92b89 Build fix 2018-01-03 15:48:18 -05:00
Tad
e918cec33b Fixup 7446b2d304 2018-01-03 13:02:20 -05:00
Tad
eb32600c0b Fix AES256 encryption patch, and update CVE patchers 2018-01-03 12:15:58 -05:00
Tad
7446b2d304 Move enter to functions.sh, and move overclocks to overclock.sh 2018-01-02 20:19:09 -05:00
Tad
a350cd92f1 Patch for AES256 encryption 2018-01-01 14:49:15 -05:00
Tad
d6148bb4df More fixes 2018-01-01 06:19:35 -05:00
Tad
8a4f0bef72 Many changes
- Disable removal of AudioFX blobs, as it breaks audio on some devices
- Enable LG G3 overclocks
- Switch mako from test to release
- Disable force-enabling of GLONASS
2017-12-31 09:09:46 -05:00
Tad
758088bde2 Update CVE patchers 2017-12-30 07:11:23 -05:00
Tad
32dc9af992 Tweaks 2017-12-30 05:44:05 -05:00
Tad
0861d217ae General updated, and LG G3 overclocking 2017-12-30 04:39:32 -05:00
Tad
ef211a5107 Fix flo, update CVE patchers 2017-12-24 10:59:48 -05:00
Tad
f35e6c2779 Add d852 2017-12-22 20:32:56 -05:00
Tad
176d22c6bb Update CVE patchers 2017-12-20 14:29:33 -05:00
Tad
cbe5dc9e9d Add support for LG G2, G3, G4, G5 and update CVE patchers 2017-12-20 13:42:28 -05:00
Tad
d3cf423227 Add a shim to install Fennec DOS 2017-12-19 20:01:17 -05:00
Tad
d740b10822 DNS changes 2017-12-19 17:03:38 -05:00
Tad
ba66e7477c Compile DejaVu 2017-12-19 16:55:30 -05:00
Tad
397ab78e21 Remove some broken patches 2017-12-19 00:18:10 -05:00
Tad
fcc8ffc5bd Tweaks and Fixes 2017-12-15 16:42:36 -05:00
Tad
f65bbb8ee0 Many improvements to the hardenDefconfig function 2017-12-09 13:27:49 -05:00
Tad
07b6c89e07 Fix bootloops with hardened defconfig 2017-12-09 05:52:59 -05:00
Tad
ef401964f7 Improvements 2017-12-09 02:07:54 -05:00
Tad
261563acfc Move functions out of patch.sh and add a kernel hardening function 2017-12-09 01:15:16 -05:00
Tad
4de3a166c4 Remove Android CVE patchers
If a patch affects 4.4.4-8.0, the patch is against 8.0 and will break <8.0
some patches will get backported to older branches others not
Will attempt to automate again later
2017-12-08 23:24:48 -05:00
Tad
2091d44aa3 Add CVE patchers for various Android repos 2017-12-08 23:13:11 -05:00
Tad
8db2dfcde2 Fix patcher paths 2017-12-08 19:29:47 -05:00
Tad
b5c8ef6bc3 Update CVE patchers 2017-12-08 18:59:55 -05:00
Tad
11cc70ef35 Privacy guard improvements and update CVE patchers 2017-12-08 08:18:39 -05:00
Tad
1bd7aab805 Update CVE patchers 2017-12-07 20:20:48 -05:00
Tad
426d32fda5 Update CVE patchers using recoded patcher 2017-12-07 01:04:22 -05:00
Tad
90d7413c04 Update CVE patchers 2017-12-05 19:42:36 -05:00
Tad
3dd9a262df Update CVE patchers with CopperheadOS kernel hardning patches 2017-12-05 18:22:31 -05:00
Tad
8b9bd2ce62 Enable permissionReviewRequired 2017-12-05 11:31:20 -05:00
Tad
dd460da4c3 Build fixes 2017-12-05 11:26:57 -05:00
Tad
face62a675 Fixes 2017-12-04 22:48:33 -05:00
Tad
f93366c8e7 Update CVE patchers 2017-12-04 19:08:04 -05:00
Tad
9bed70363b Update CVE patchers 2017-12-04 18:49:19 -05:00
Tad
dd7454b664 Update CVE patchers 2017-12-01 17:02:23 -05:00
Tad
8e7e492c04 Submodules! 2017-11-28 12:28:55 -05:00
Tad
39337477bf Fixes 2017-11-26 12:43:47 -05:00
Tad
f17b6e477d Update CVE patchers 2017-11-25 19:55:55 -05:00
Tad
c75ac86118 Comments 2017-11-18 08:25:48 -05:00
Tad
557d18a471 Firmware deblobber: Fix mounting /firmware 2017-11-11 09:40:23 -05:00
Tad
5dfb34d47d Inline the firmware deblobber 2017-11-11 06:46:58 -05:00
Tad
fc857876dc Disable Radio power tile for now 2017-11-11 04:32:04 -05:00
Tad
dec73c392c Add a qs tile for controlling radio power 2017-11-10 17:28:44 -05:00
Tad
7d4faa1ef8 More patches 2017-11-10 12:23:07 -05:00
Tad
8ead3072ca Linux incremental patches - little benefit 2017-11-10 04:13:11 -05:00
Tad
1b74baddf0 Patch against towelroot 2017-11-10 03:06:09 -05:00
Tad
d1f4933957 Many fixes 2017-11-09 22:59:37 -05:00
Tad
2711871d50 PAPP: Add more apps 2017-11-09 20:56:11 -05:00
Tad
21fdd3cec7 Defaults fixes and 256 bit encryption 2017-11-09 17:16:55 -05:00
Tad
b84f0881b0 Version the previous USB patches 2017-11-08 13:13:06 -05:00
Tad
7b3c994731 Update CVE patchers 2017-11-08 03:42:33 -05:00
Tad
aaa94329a5 Add more patches 2017-11-08 03:23:39 -05:00
Tad
397e66c977 CVE Build fixes 2017-11-07 23:45:28 -05:00
Tad
93795db152 Update CVE patchers 2017-11-07 23:07:05 -05:00
Tad
09fac4ca19 Update CVE patchers 2017-11-07 22:09:45 -05:00
Tad
7c0049f494 Update CVE patchers 2017-11-07 21:54:21 -05:00
Tad
3a5e68f927 Update patchers 2017-11-07 20:35:49 -05:00
Tad
fc6fc0f96e Rewrite CVE patchers 2017-11-07 20:11:50 -05:00
Tad
8ed308c888 Update CVE pathcers against new patches 2017-11-07 20:00:37 -05:00
Tad
7da9d77ed3 Patcher updates 2017-11-07 19:12:41 -05:00
Tad
529ce03a13 Fixup wireless patches 2017-11-07 18:55:10 -05:00
Tad
58be4b7c58 Add an extremely detailed list of Linux CVE patches
It only took 7 hours!
2017-11-07 04:35:41 -05:00
Tad
10686a9480 More LAOS-11.0 fixes 2017-11-06 17:15:01 -05:00
Tad
5bc79a7ad7 Restore nex/11.0 and cleanup 2017-11-06 15:34:40 -05:00
Tad
db7f521c28 Update FDroid repos 2017-11-05 23:19:53 -05:00
Tad
848056f0ff Remove more blobs, update FDroid repos 2017-11-05 18:39:54 -05:00
Tad
112384f039 Fixes 2017-11-05 16:49:52 -05:00
Tad
d2b8412b97 Add a script for changing default settings 2017-11-05 16:40:21 -05:00
Tad
a6d3a9c9f2 Remove a few more blobs 2017-11-05 14:30:15 -05:00
Tad
e0c764492d Add CVE patchers and commands for new devices 2017-11-05 14:15:54 -05:00
Tad
a42e8a5243 Add initial support for 7 more devices 2017-11-05 13:56:37 -05:00
Tad
7ffb675a15 Licensing fixes, and misc fixes 2017-11-05 10:58:01 -05:00
Tad
1e761ace58 Tweak FDroid defaults 2017-11-04 20:00:07 -04:00
Tad
d636b7c598 Many fixes 2017-11-04 16:56:52 -04:00
Tad
b1b71f43c6 Replace wallpapers with out own better ones, Replace FDroid repo patch with just the file instead 2017-11-04 09:47:54 -04:00
Tad
f5e96522e1 Fixes 2017-11-02 19:35:27 -04:00
Tad
5cce7e4c37 Add CVE patcher for nex 2017-11-02 19:09:39 -04:00
Tad
6cb184876a More KRACK patches 2017-11-02 16:48:37 -04:00
Tad
c3c75e7b73 Revert "CVE Patchers: Switch to 3way, patch ~552 CVEs"
This reverts commit 7d24041ae3.

A quick sanity check against cve.lineageos.org shows most of these are patched already.
--3way == bad way
2017-11-02 16:01:55 -04:00
Tad
7d24041ae3 CVE Patchers: Switch to 3way, patch ~552 CVEs
I hope this doesn't break compile... it probably will and this will end up reverted :(
2017-11-02 15:57:46 -04:00
Tad
79daadb5ef Update CVE patchers for ranged versions, patching 1 CVE 2017-11-02 15:26:49 -04:00
Tad
7c31506e56 CVE Patches: ranged versions 2017-11-02 15:07:05 -04:00
Tad
f638b1434e Fixes 2017-10-31 14:06:04 -04:00
Tad
43e4a7035d Patch 30 more CVEs 2017-10-31 13:44:26 -04:00
Tad
77fc7b452c Fix empty CVE patches 2017-10-31 13:24:35 -04:00
Tad
9a09d20695 Disable patch for CVE-2016-0819 2017-10-30 22:46:23 -04:00
Tad
64d490d95e Remove network hardening patches, disable mako LTE patch, add function to enable forceencrypt 2017-10-30 17:38:00 -04:00
Tad
53ae1c8103 Simplify script paths 2017-10-30 01:30:10 -04:00
Tad
41b11b0273 Fully patch against KRACK 2017-10-30 01:13:51 -04:00
Tad
3afd709762 Remove duplicate cve patches and update CVE patchers 2017-10-29 22:33:38 -04:00
Tad
3989a1b20b Update Linux CVE patches 2017-10-29 22:14:37 -04:00
Tad
12b63c12b7 Remove some duplicate CVE patches and add back fixed CVE patcher scripts 2017-10-29 21:26:04 -04:00
Tad
e1a0ab6afd Fixes 2017-10-29 21:10:36 -04:00
Tad
548fbd1b50 New patchers 2017-10-29 16:25:37 -04:00
Tad
92a0187dfb Overhaul CVE patches 2017-10-29 14:23:02 -04:00
Tad
ce59045163 Add some more Linux CVE patches 2017-10-29 04:19:13 -04:00
Tad
86c2d7a648 Remove many duplicate linux CVE patches and update patchers 2017-10-29 03:46:24 -04:00
Tad
3376142301 Fixes 2017-10-29 02:43:38 -04:00
Tad
f5425a4c97 More tweaks, add many scripts for patching kernel cves 2017-10-29 02:21:16 -04:00
Tad
75099b9404 Add patches for many Linux CVEs, and overhaul script paths 2017-10-29 01:48:53 -04:00